./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2660323392

<...>
Warning: Permanently added '10.128.1.61' (ED25519) to the list of known hosts.
execve("./syz-executor2660323392", ["./syz-executor2660323392"], 0x7ffd7b208820 /* 10 vars */) = 0
brk(NULL)                               = 0x555556aec000
brk(0x555556aecd00)                     = 0x555556aecd00
arch_prctl(ARCH_SET_FS, 0x555556aec380) = 0
set_tid_address(0x555556aec650)         = 5054
set_robust_list(0x555556aec660, 24)     = 0
rseq(0x555556aecca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2660323392", 4096) = 28
getrandom("\x84\x2a\xd2\x4f\x09\x9a\x24\xab", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x555556aecd00
brk(0x555556b0dd00)                     = 0x555556b0dd00
brk(0x555556b0e000)                     = 0x555556b0e000
mprotect(0x7f7c2e463000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
unshare(CLONE_NEWPID)                   = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5055 attached
, child_tidptr=0x555556aec650) = 5055
[pid  5055] set_robust_list(0x555556aec660, 24) = 0
[pid  5055] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy)
[pid  5055] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5055] setsid()                    = 1
[pid  5055] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0
[pid  5055] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0
[pid  5055] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0
[pid  5055] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0
[pid  5055] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0
[pid  5055] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0
[pid  5055] unshare(CLONE_NEWNS)        = 0
[pid  5055] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0
[pid  5055] unshare(CLONE_NEWIPC)       = 0
[pid  5055] unshare(CLONE_NEWCGROUP)    = 0
[pid  5055] unshare(CLONE_NEWUTS)       = 0
[pid  5055] unshare(CLONE_SYSVSEM)      = 0
[pid  5055] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5055] write(3, "16777216", 8)     = 8
[pid  5055] close(3)                    = 0
[pid  5055] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3
[pid  5055] write(3, "536870912", 9)    = 9
[pid  5055] close(3)                    = 0
[pid  5055] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5055] write(3, "1024", 4)         = 4
[pid  5055] close(3)                    = 0
[pid  5055] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5055] write(3, "8192", 4)         = 4
[pid  5055] close(3)                    = 0
[pid  5055] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5055] write(3, "1024", 4)         = 4
[pid  5055] close(3)                    = 0
[pid  5055] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3
[pid  5055] write(3, "1024", 4)         = 4
[pid  5055] close(3)                    = 0
[pid  5055] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3
[pid  5055] write(3, "1024 1048576 500 1024", 21) = 21
[pid  5055] close(3)                    = 0
[pid  5055] getpid()                    = 1
[pid  5055] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5055] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5055] unshare(CLONE_NEWNET)       = 0
[pid  5055] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3
[pid  5055] write(3, "0 65535", 7)      = 7
[pid  5055] close(3)                    = 0
[pid  5055] mkdir("/dev/binderfs", 0777) = 0
[pid  5055] mount("binder", "/dev/binderfs", "binder", 0, NULL) = 0
[pid  5055] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5055] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5058 attached
, child_tidptr=0x555556aec650) = 2
[pid  5058] set_robust_list(0x555556aec660, 24) = 0
[pid  5058] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5058] setpgid(0, 0)               = 0
[pid  5058] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5058] write(3, "1000", 4)         = 4
[pid  5058] close(3)                    = 0
[pid  5058] openat(AT_FDCWD, "/dev/bus/usb/009/001", O_RDONLY) = 3
[pid  5058] socketpair(AF_UNIX, SOCK_STREAM, 0, [4, 5]) = 0
[pid  5058] openat(AT_FDCWD, "/sys/devices/platform/vhci_hcd.0/attach", O_WRONLY|O_CLOEXEC) = 6
[pid  5058] write(6, "0 4 0 1", 7)      = 7
[pid  5058] close(6)                    = 0
[   45.327346][ T5058] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[   45.333873][ T5058] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   45.341559][ T5058] vhci_hcd vhci_hcd.0: Device attached
[   45.709953][  T778] usb 9-1: new low-speed USB device number 2 using vhci_hcd
[pid  5058] close(3 <unfinished ...>
[pid  5055] kill(-2, SIGKILL)           = 0
[pid  5055] kill(2, SIGKILL)            = 0
[pid  5055] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5055] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5055] getdents64(3, 0x555556aed6f0 /* 2 entries */, 32768) = 48
[pid  5055] getdents64(3, 0x555556aed6f0 /* 0 entries */, 32768) = 0
[pid  5055] close(3)                    = 0
[   76.130644][    T8] cfg80211: failed to load regulatory.db
[  286.049905][   T29] INFO: task kworker/1:2:778 blocked for more than 143 seconds.
[  286.057601][   T29]       Not tainted 6.7.0-syzkaller-09928-g052d534373b7 #0
[  286.064833][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  286.073596][   T29] task:kworker/1:2     state:D stack:27392 pid:778   tgid:778   ppid:2      flags:0x00004000
[  286.083853][   T29] Workqueue: usb_hub_wq hub_event
[  286.088950][   T29] Call Trace:
[  286.092250][   T29]  <TASK>
[  286.095193][   T29]  __schedule+0xf12/0x5c00
[  286.099607][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[  286.105010][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[  286.110450][   T29]  ? rcu_is_watching+0x12/0xb0
[  286.115218][   T29]  ? io_schedule_timeout+0x150/0x150
[  286.120531][   T29]  ? lock_release+0x4bf/0x690
[  286.125255][   T29]  ? schedule+0x1fc/0x270
[  286.129576][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[  286.134968][   T29]  ? spin_bug+0x1d0/0x1d0
[  286.139307][   T29]  ? rcu_is_watching+0x12/0xb0
[  286.144106][   T29]  ? trace_irq_enable.constprop.0+0xd0/0x100
[  286.150149][   T29]  schedule+0xe9/0x270
[  286.154205][   T29]  usb_kill_urb.part.0+0x1c6/0x250
[  286.159299][   T29]  ? usb_anchor_suspend_wakeups+0x40/0x40
[  286.165037][   T29]  ? prepare_to_swait_exclusive+0x240/0x240
[  286.170971][   T29]  ? preempt_count_sub+0x160/0x160
[  286.176069][   T29]  usb_kill_urb+0x83/0xa0
[  286.180707][   T29]  usb_start_wait_urb+0x251/0x4c0
[  286.185775][   T29]  ? usb_api_blocking_completion+0xa0/0xa0
[  286.191613][   T29]  usb_control_msg+0x327/0x4a0
[  286.196400][   T29]  ? usb_start_wait_urb+0x4c0/0x4c0
[  286.201623][   T29]  ? hub_resume+0x3e0/0x3e0
[  286.206142][   T29]  get_bMaxPacketSize0.constprop.0+0xa5/0x1c0
[  286.212224][   T29]  hub_port_init+0x680/0x3820
[  286.216917][   T29]  hub_event+0x2b61/0x4e10
[  286.221373][   T29]  ? hub_port_debounce+0x3d0/0x3d0
[  286.226514][   T29]  ? lock_acquire+0x464/0x520
[  286.231201][   T29]  ? check_irq_usage+0xc11/0x1490
[  286.236254][   T29]  ? lock_sync+0x190/0x190
[  286.240687][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[  286.246092][   T29]  ? spin_bug+0x1d0/0x1d0
[  286.250436][   T29]  process_one_work+0x886/0x15d0
[  286.255403][   T29]  ? lock_sync+0x190/0x190
[  286.259877][   T29]  ? workqueue_congested+0x300/0x300
[  286.265248][   T29]  ? assign_work+0x1a0/0x250
[  286.269875][   T29]  worker_thread+0x8b9/0x1290
[  286.274603][   T29]  ? __kthread_parkme+0x14b/0x220
[  286.279616][   T29]  ? process_one_work+0x15d0/0x15d0
[  286.284850][   T29]  kthread+0x2c6/0x3a0
[  286.288956][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  286.294633][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  286.300345][   T29]  ret_from_fork+0x45/0x80
[  286.304777][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  286.310433][   T29]  ret_from_fork_asm+0x11/0x20
[  286.315241][   T29]  </TASK>
[  286.318336][   T29] INFO: task syz-executor266:5058 blocked for more than 143 seconds.
[  286.326452][   T29]       Not tainted 6.7.0-syzkaller-09928-g052d534373b7 #0
[  286.333691][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  286.342384][   T29] task:syz-executor266 state:D stack:27256 pid:5058  tgid:5058  ppid:5055   flags:0x00004006
[  286.352577][   T29] Call Trace:
[  286.355836][   T29]  <TASK>
[  286.358746][   T29]  __schedule+0xf12/0x5c00
[  286.363183][   T29]  ? trace_irq_enable.constprop.0+0xd0/0x100
[  286.369194][   T29]  ? finish_task_switch.isra.0+0x219/0xca0
[  286.375027][   T29]  ? io_schedule_timeout+0x150/0x150
[  286.380350][   T29]  ? lock_release+0x4bf/0x690
[  286.385011][   T29]  ? schedule+0x1fc/0x270
[  286.389322][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[  286.394716][   T29]  ? __mutex_lock+0x5b4/0x9d0
[  286.399426][   T29]  ? __mutex_trylock_common+0x78/0x250
[  286.404913][   T29]  ? mutex_is_locked+0x40/0x40
[  286.409705][   T29]  ? spin_bug+0x1d0/0x1d0
[  286.414046][   T29]  schedule+0xe9/0x270
[  286.418126][   T29]  schedule_preempt_disabled+0x13/0x20
[  286.423599][   T29]  __mutex_lock+0x5b9/0x9d0
[  286.428122][   T29]  ? locks_remove_posix+0x28e/0x440
[  286.433346][   T29]  ? usbdev_release+0x87/0x470
[  286.438130][   T29]  ? mutex_trylock+0x130/0x130
[  286.442949][   T29]  ? __fsnotify_update_child_dentry_flags+0x340/0x340
[  286.449751][   T29]  ? locks_remove_file+0x399/0x5a0
[  286.454888][   T29]  ? free_async+0x4e0/0x4e0
[  286.459420][   T29]  ? usbdev_release+0x87/0x470
[  286.464231][   T29]  usbdev_release+0x87/0x470
[  286.468850][   T29]  ? free_async+0x4e0/0x4e0
[  286.473393][   T29]  __fput+0x270/0xb70
[  286.477405][   T29]  __fput_sync+0x47/0x50
[  286.481678][   T29]  __x64_sys_close+0x87/0xf0
[  286.486284][   T29]  do_syscall_64+0xd3/0x250
[  286.490800][   T29]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  286.496717][   T29] RIP: 0033:0x7f7c2e3ef0e0
[  286.501151][   T29] RSP: 002b:00007ffd31175c18 EFLAGS: 00000202 ORIG_RAX: 0000000000000003
[  286.509578][   T29] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f7c2e3ef0e0
[  286.517560][   T29] RDX: 0000000000000007 RSI: 00007ffd31175750 RDI: 0000000000000003
[  286.525571][   T29] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  286.533577][   T29] R10: 0000000000000000 R11: 0000000000000202 R12: 00000000000f4240
[  286.541615][   T29] R13: 00007ffd31175ec8 R14: 0000000000000001 R15: 00007ffd31175c60
[  286.549594][   T29]  </TASK>
[  286.552620][   T29] INFO: lockdep is turned off.
[  286.557370][   T29] NMI backtrace for cpu 0
[  286.561677][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.7.0-syzkaller-09928-g052d534373b7 #0
[  286.571117][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[  286.581154][   T29] Call Trace:
[  286.584416][   T29]  <TASK>
[  286.587330][   T29]  dump_stack_lvl+0xd9/0x1b0
[  286.591917][   T29]  nmi_cpu_backtrace+0x277/0x390
[  286.596851][   T29]  ? lapic_can_unplug_cpu+0xa0/0xa0
[  286.602044][   T29]  nmi_trigger_cpumask_backtrace+0x299/0x300
[  286.608019][   T29]  watchdog+0xf87/0x1210
[  286.612255][   T29]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  286.618227][   T29]  ? __kthread_parkme+0x14b/0x220
[  286.623240][   T29]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  286.629210][   T29]  kthread+0x2c6/0x3a0
[  286.633266][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  286.638888][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  286.644514][   T29]  ret_from_fork+0x45/0x80
[  286.648931][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  286.654552][   T29]  ret_from_fork_asm+0x11/0x20
[  286.659310][   T29]  </TASK>
[  286.662354][   T29] Sending NMI from CPU 0 to CPUs 1:
[  286.667573][    C1] NMI backtrace for cpu 1
[  286.667580][    C1] CPU: 1 PID: 70 Comm: kworker/u4:4 Not tainted 6.7.0-syzkaller-09928-g052d534373b7 #0
[  286.667594][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[  286.667602][    C1] Workqueue: events_unbound toggle_allocation_gate
[  286.667621][    C1] RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x60
[  286.667641][    C1] Code: b6 dc df 02 66 0f 1f 44 00 00 f3 0f 1e fa 48 8b be b0 01 00 00 e8 b0 ff ff ff 31 c0 c3 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <f3> 0f 1e fa 65 48 8b 14 25 80 c2 03 00 65 8b 05 d4 b1 7b 7e a9 00
[  286.667653][    C1] RSP: 0018:ffffc900015a79a0 EFLAGS: 00000006
[  286.667663][    C1] RAX: 0000000000000000 RBX: 0000000000000200 RCX: ffffffff812fe3af
[  286.667671][    C1] RDX: ffff888016b58000 RSI: 0000000000000000 RDI: 0000000000000007
[  286.667679][    C1] RBP: ffffffff81d5e322 R08: 0000000000000007 R09: 0000000000000000
[  286.667687][    C1] R10: 0000000000000200 R11: 1ffff110093967f9 R12: 0000000000000323
[  286.667695][    C1] R13: 0000000000000003 R14: ffffffff8d326f00 R15: 0000000000000000
[  286.667707][    C1] FS:  0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[  286.667719][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  286.667728][    C1] CR2: 000055d4ada38680 CR3: 000000000cf79000 CR4: 0000000000350ef0
[  286.667736][    C1] Call Trace:
[  286.667741][    C1]  <NMI>
[  286.667745][    C1]  ? show_regs+0x8f/0xa0
[  286.667762][    C1]  ? nmi_cpu_backtrace+0x1d4/0x390
[  286.667783][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x10
[  286.667803][    C1]  ? nmi_handle+0x1a6/0x570
[  286.667818][    C1]  ? x86_pmu_event_mapped+0x1c0/0x1c0
[  286.667840][    C1]  ? kcov_close+0x20/0x20
[  286.667856][    C1]  ? default_do_nmi+0x6a/0x160
[  286.667872][    C1]  ? exc_nmi+0x186/0x200
[  286.667886][    C1]  ? end_repeat_nmi+0xf/0x2a
[  286.667907][    C1]  ? kmalloc_node_trace+0xa2/0x380
[  286.667929][    C1]  ? __text_poke+0x5df/0xca0
[  286.667942][    C1]  ? kcov_close+0x20/0x20
[  286.667958][    C1]  ? kcov_close+0x20/0x20
[  286.667975][    C1]  ? kcov_close+0x20/0x20
[  286.667991][    C1]  </NMI>
[  286.667995][    C1]  <TASK>
[  286.667998][    C1]  __text_poke+0x8d2/0xca0
[  286.668011][    C1]  ? setup_data_read+0x280/0x280
[  286.668027][    C1]  ? apply_relocation+0x830/0x830
[  286.668041][    C1]  ? __text_poke+0xca0/0xca0
[  286.668055][    C1]  text_poke_bp_batch+0x493/0x750
[  286.668071][    C1]  ? kmem_cache_alloc_bulk+0x1b7/0x940
[  286.668091][    C1]  ? alternatives_enable_smp+0x400/0x400
[  286.668105][    C1]  ? __jump_label_patch+0x1db/0x400
[  286.668124][    C1]  ? text_poke_queue+0xef/0x180
[  286.668145][    C1]  ? arch_jump_label_transform_queue+0xc0/0x110
[  286.668168][    C1]  text_poke_finish+0x30/0x40
[  286.668182][    C1]  arch_jump_label_transform_apply+0x1c/0x30
[  286.668203][    C1]  jump_label_update+0x1d7/0x400
[  286.668224][    C1]  static_key_enable_cpuslocked+0x1b7/0x270
[  286.668244][    C1]  static_key_enable+0x1a/0x20
[  286.668262][    C1]  toggle_allocation_gate+0xf4/0x250
[  286.668281][    C1]  ? wake_up_kfence_timer+0x30/0x30
[  286.668299][    C1]  ? spin_bug+0x1d0/0x1d0
[  286.668315][    C1]  process_one_work+0x886/0x15d0
[  286.668336][    C1]  ? lock_sync+0x190/0x190
[  286.668347][    C1]  ? workqueue_congested+0x300/0x300
[  286.668368][    C1]  ? assign_work+0x1a0/0x250
[  286.668387][    C1]  worker_thread+0x8b9/0x1290
[  286.668408][    C1]  ? __kthread_parkme+0x14b/0x220
[  286.668427][    C1]  ? process_one_work+0x15d0/0x15d0
[  286.668444][    C1]  kthread+0x2c6/0x3a0
[  286.668457][    C1]  ? kthread_complete_and_exit+0x40/0x40
[  286.668472][    C1]  ? kthread_complete_and_exit+0x40/0x40
[  286.668488][    C1]  ret_from_fork+0x45/0x80
[  286.668502][    C1]  ? kthread_complete_and_exit+0x40/0x40
[  286.668517][    C1]  ret_from_fork_asm+0x11/0x20
[  286.668537][    C1]  </TASK>
[  286.668570][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  287.036253][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.7.0-syzkaller-09928-g052d534373b7 #0
[  287.045692][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[  287.055729][   T29] Call Trace:
[  287.058993][   T29]  <TASK>
[  287.061911][   T29]  dump_stack_lvl+0xd9/0x1b0
[  287.066513][   T29]  panic+0x6dc/0x790
[  287.070402][   T29]  ? panic_smp_self_stop+0xa0/0xa0
[  287.075512][   T29]  ? __irq_work_queue_local+0x132/0x400
[  287.081045][   T29]  ? irq_work_queue+0x2a/0x70
[  287.085708][   T29]  ? watchdog+0xd3e/0x1210
[  287.090115][   T29]  ? watchdog+0xd31/0x1210
[  287.094522][   T29]  watchdog+0xd4f/0x1210
[  287.098760][   T29]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  287.104731][   T29]  ? __kthread_parkme+0x14b/0x220
[  287.109744][   T29]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  287.115719][   T29]  kthread+0x2c6/0x3a0
[  287.119781][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  287.125411][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  287.131042][   T29]  ret_from_fork+0x45/0x80
[  287.135448][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  287.141073][   T29]  ret_from_fork_asm+0x11/0x20
[  287.145836][   T29]  </TASK>
[  287.149057][   T29] Kernel Offset: disabled
[  287.153361][   T29] Rebooting in 86400 seconds..